I have tryed to apply all modify that you have tell me but the windows mobile give always same error in ipsec barf.<br>Do you have another suggestion?<br>Exucse for my instince but is 1 week that i configure this and don't work.<br>
<br>Thanks<br><br>Denis<br><br><br><div class="gmail_quote">On Feb 19, 2008 12:00 PM, Paul Wouters <<a href="mailto:paul@xelerance.com">paul@xelerance.com</a>> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div class="Ih2E3d">On Tue, 19 Feb 2008, Denis Beltramo wrote:<br><br>> This is all that i could say, windows mobile say only that is impossibile to<br>> connect to network:<br><br></div>[cut tcpdump, which is not useful because there is encryption]<br>
<br>> compress=yes<br><br>Try compress=no?<br><div class="Ih2E3d"><br>> conn roadwarrior-l2tp<br>> leftprotoport=17/1701<br>> rightprotoport=17/1701<br><br></div>Use rightprotoport=17/0 (meaning any port) but make sure you are using<br>
2.4.11 or newer.<br>Add type=transport and rightsubnet=vhost:%priv,%no<br><div class="Ih2E3d"><br>> also=roadwarrior<br>><br>> conn roadwarrior<br>> left=<a href="http://172.31.1.190" target="_blank">172.31.1.190</a><br>
> leftcert=pubblica.pem<br>> right=%any<br>> auto=add<br>> pfs=no<br>><br>> conn roadwarrior-all<br>> leftsubnet=<a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
> also=roadwarrior<br><br></div>You should decide what you are doing. IPsec tunnel mode, or<br>IPsec with L2TP. Then only have that connection active, so<br>there is no chance of the wrong one being picked.<br>
<div class="Ih2E3d"><br>> conn roadwarrior-l2tp-updatedwin<br>> leftprotoport=17/1701<br>> rightprotoport=17/1701<br>> also=roadwarrior<br><br></div>Remove this one.<br><font color="#888888"><br>
Paul<br></font></blockquote></div><br>